Symantec Site Vulnerable to Cross-site Scripting Assaults

According to Nemesis/t3am3lite (name of a website), Symantec’s site too is now open to XSS (cross-site scripting) attacks together with Iframe injections.

An XSS attack, according to security experts, launches when a web program collects vicious data from an end-user mostly via a hyperlink that carries malicious content inside it. Thus, as the end-user clicks on the hyperlink while on another site, or via any other mode of connection, the attacker compromises his data.

[…] to what begins to look like a long list of AV vendors, which includes names such as those of Symantec, Kaspersky, Avira, ESET, AVG, Bitdefender or F-Secure, whose websites have been found vulnerable to […]